agola/internal/services/gateway/action/remotesource.go

// Copyright 2019 Sorint.lab
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied
// See the License for the specific language governing permissions and
// limitations under the License.

package action

import (
	"context"

	"github.com/sorintlab/agola/internal/services/types"
	"github.com/sorintlab/agola/internal/util"

	errors "golang.org/x/xerrors"
)

func (h *ActionHandler) GetRemoteSource(ctx context.Context, rsRef string) (*types.RemoteSource, error) {
	rs, resp, err := h.configstoreClient.GetRemoteSource(ctx, rsRef)
	if err != nil {
		return nil, ErrFromRemote(resp, err)
	}
	return rs, nil
}

type GetRemoteSourcesRequest struct {
	Start string
	Limit int
	Asc   bool
}

func (h *ActionHandler) GetRemoteSources(ctx context.Context, req *GetRemoteSourcesRequest) ([]*types.RemoteSource, error) {
	remoteSources, resp, err := h.configstoreClient.GetRemoteSources(ctx, req.Start, req.Limit, req.Asc)
	if err != nil {
		return nil, ErrFromRemote(resp, err)
	}
	return remoteSources, nil
}

type CreateRemoteSourceRequest struct {
	Name                string
	APIURL              string
	SkipVerify          bool
	Type                string
	AuthType            string
	Oauth2ClientID      string
	Oauth2ClientSecret  string
	SSHHostKey          string
	SkipSSHHostKeyCheck bool
}

func (h *ActionHandler) CreateRemoteSource(ctx context.Context, req *CreateRemoteSourceRequest) (*types.RemoteSource, error) {
	if !h.IsUserAdmin(ctx) {
		return nil, errors.Errorf("user not admin")
	}

	if !util.ValidateName(req.Name) {
		return nil, util.NewErrBadRequest(errors.Errorf("invalid remotesource name %q", req.Name))
	}

	if req.Name == "" {
		return nil, util.NewErrBadRequest(errors.Errorf("remotesource name required"))
	}
	if req.APIURL == "" {
		return nil, util.NewErrBadRequest(errors.Errorf("remotesource api url required"))
	}
	if req.Type == "" {
		return nil, util.NewErrBadRequest(errors.Errorf("remotesource type required"))
	}
	if req.AuthType == "" {
		return nil, util.NewErrBadRequest(errors.Errorf("remotesource auth type required"))
	}

	// validate if the remote source type supports the required auth type
	if !types.SourceSupportsAuthType(types.RemoteSourceType(req.Type), types.RemoteSourceAuthType(req.AuthType)) {
		return nil, util.NewErrBadRequest(errors.Errorf("remotesource type %q doesn't support auth type %q", req.Type, req.AuthType))
	}

	if req.AuthType == string(types.RemoteSourceAuthTypeOauth2) {
		if req.Oauth2ClientID == "" {
			return nil, util.NewErrBadRequest(errors.Errorf("remotesource oauth2 clientid required"))
		}
		if req.Oauth2ClientSecret == "" {
			return nil, util.NewErrBadRequest(errors.Errorf("remotesource oauth2 client secret required"))
		}
	}

	rs := &types.RemoteSource{
		Name:                req.Name,
		Type:                types.RemoteSourceType(req.Type),
		AuthType:            types.RemoteSourceAuthType(req.AuthType),
		APIURL:              req.APIURL,
		SkipVerify:          req.SkipVerify,
		Oauth2ClientID:      req.Oauth2ClientID,
		Oauth2ClientSecret:  req.Oauth2ClientSecret,
		SSHHostKey:          req.SSHHostKey,
		SkipSSHHostKeyCheck: req.SkipSSHHostKeyCheck,
	}

	h.log.Infof("creating remotesource")
	rs, resp, err := h.configstoreClient.CreateRemoteSource(ctx, rs)
	if err != nil {
		return nil, errors.Errorf("failed to create remotesource: %w", ErrFromRemote(resp, err))
	}
	h.log.Infof("remotesource %s created, ID: %s", rs.Name, rs.ID)

	return rs, nil
}

type UpdateRemoteSourceRequest struct {
	RemoteSourceRef string

	Name                *string
	APIURL              *string
	SkipVerify          *bool
	Oauth2ClientID      *string
	Oauth2ClientSecret  *string
	SSHHostKey          *string
	SkipSSHHostKeyCheck *bool
}

func (h *ActionHandler) UpdateRemoteSource(ctx context.Context, req *UpdateRemoteSourceRequest) (*types.RemoteSource, error) {
	if !h.IsUserAdmin(ctx) {
		return nil, errors.Errorf("user not admin")
	}

	rs, resp, err := h.configstoreClient.GetRemoteSource(ctx, req.RemoteSourceRef)
	if err != nil {
		return nil, ErrFromRemote(resp, err)
	}

	if req.Name != nil {
		rs.Name = *req.Name
	}
	if req.APIURL != nil {
		rs.APIURL = *req.APIURL
	}
	if req.SkipVerify != nil {
		rs.SkipVerify = *req.SkipVerify
	}
	if req.Oauth2ClientID != nil {
		rs.Oauth2ClientID = *req.Oauth2ClientID
	}
	if req.Oauth2ClientSecret != nil {
		rs.Oauth2ClientSecret = *req.Oauth2ClientSecret
	}
	if req.SSHHostKey != nil {
		rs.SSHHostKey = *req.SSHHostKey
	}
	if req.SkipSSHHostKeyCheck != nil {
		rs.SkipSSHHostKeyCheck = *req.SkipSSHHostKeyCheck
	}

	h.log.Infof("updating remotesource")
	rs, resp, err = h.configstoreClient.UpdateRemoteSource(ctx, req.RemoteSourceRef, rs)
	if err != nil {
		return nil, errors.Errorf("failed to update remotesource: %w", ErrFromRemote(resp, err))
	}
	h.log.Infof("remotesource %s updated", rs.Name)

	return rs, nil
}

func (h *ActionHandler) DeleteRemoteSource(ctx context.Context, rsRef string) error {
	if !h.IsUserAdmin(ctx) {
		return errors.Errorf("user not admin")
	}

	resp, err := h.configstoreClient.DeleteRemoteSource(ctx, rsRef)
	if err != nil {
		return errors.Errorf("failed to delete remote source: %w", ErrFromRemote(resp, err))
	}
	return nil
}
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`// Copyright 2019 Sorint.lab`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`package action`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00
			`import (`
			`"context"`

			`"github.com/sorintlab/agola/internal/services/types"`
			`"github.com/sorintlab/agola/internal/util"`

*: migrate to "golang.org/x/xerrors" Just a raw replace of "github.com/pkg/errors". Next steps will improve errors (like remote errors, api errors, not exist errors etc...) to leverage its functionalities 2019-05-23 09:23:14 +00:00			`errors "golang.org/x/xerrors"`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`)`

gateway: move remaining remotesource logic from api to actions 2019-05-05 12:54:16 +00:00			`func (h ActionHandler) GetRemoteSource(ctx context.Context, rsRef string) (types.RemoteSource, error) {`
			`rs, resp, err := h.configstoreClient.GetRemoteSource(ctx, rsRef)`
			`if err != nil {`
			`return nil, ErrFromRemote(resp, err)`
			`}`
			`return rs, nil`
			`}`

			`type GetRemoteSourcesRequest struct {`
			`Start string`
			`Limit int`
			`Asc bool`
			`}`

			`func (h ActionHandler) GetRemoteSources(ctx context.Context, req GetRemoteSourcesRequest) ([]*types.RemoteSource, error) {`
			`remoteSources, resp, err := h.configstoreClient.GetRemoteSources(ctx, req.Start, req.Limit, req.Asc)`
			`if err != nil {`
			`return nil, ErrFromRemote(resp, err)`
			`}`
			`return remoteSources, nil`
			`}`

/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`type CreateRemoteSourceRequest struct {`
*: set sshhostkey and skip check on remote source 2019-05-07 13:59:08 +00:00			`Name string`
			`APIURL string`
cmd/api: add skipVerify remote source option Add an option to set skipVerify on remote source to disable tls cert verification on remote source api endpoint 2019-05-22 14:28:42 +00:00			`SkipVerify bool`
*: set sshhostkey and skip check on remote source 2019-05-07 13:59:08 +00:00			`Type string`
			`AuthType string`
			`Oauth2ClientID string`
			`Oauth2ClientSecret string`
			`SSHHostKey string`
			`SkipSSHHostKeyCheck bool`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`}`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`func (h ActionHandler) CreateRemoteSource(ctx context.Context, req CreateRemoteSourceRequest) (*types.RemoteSource, error) {`
gateway: initial authorization 2019-05-03 21:19:23 +00:00			`if !h.IsUserAdmin(ctx) {`
			`return nil, errors.Errorf("user not admin")`
			`}`

/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`if !util.ValidateName(req.Name) {`
			`return nil, util.NewErrBadRequest(errors.Errorf("invalid remotesource name %q", req.Name))`
			`}`

			`if req.Name == "" {`
			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource name required"))`
			`}`
			`if req.APIURL == "" {`
			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource api url required"))`
			`}`
			`if req.Type == "" {`
			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource type required"))`
			`}`
			`if req.AuthType == "" {`
			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource auth type required"))`
			`}`

			`// validate if the remote source type supports the required auth type`
configstore: add more validations All the validation must be done inside the configstore since it's the source of truth. The gateway could also do some validation to avoid bad requests to the configstore when needed or when the logic resides outside the configstore (like project setup or user registration) 2019-05-03 10:41:49 +00:00			`if !types.SourceSupportsAuthType(types.RemoteSourceType(req.Type), types.RemoteSourceAuthType(req.AuthType)) {`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource type %q doesn't support auth type %q", req.Type, req.AuthType))`
			`}`

			`if req.AuthType == string(types.RemoteSourceAuthTypeOauth2) {`
			`if req.Oauth2ClientID == "" {`
			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource oauth2 clientid required"))`
			`}`
			`if req.Oauth2ClientSecret == "" {`
			`return nil, util.NewErrBadRequest(errors.Errorf("remotesource oauth2 client secret required"))`
			`}`
			`}`

			`rs := &types.RemoteSource{`
*: set sshhostkey and skip check on remote source 2019-05-07 13:59:08 +00:00			`Name: req.Name,`
			`Type: types.RemoteSourceType(req.Type),`
			`AuthType: types.RemoteSourceAuthType(req.AuthType),`
			`APIURL: req.APIURL,`
cmd/api: add skipVerify remote source option Add an option to set skipVerify on remote source to disable tls cert verification on remote source api endpoint 2019-05-22 14:28:42 +00:00			`SkipVerify: req.SkipVerify,`
*: set sshhostkey and skip check on remote source 2019-05-07 13:59:08 +00:00			`Oauth2ClientID: req.Oauth2ClientID,`
			`Oauth2ClientSecret: req.Oauth2ClientSecret,`
			`SSHHostKey: req.SSHHostKey,`
			`SkipSSHHostKeyCheck: req.SkipSSHHostKeyCheck,`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`}`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`h.log.Infof("creating remotesource")`
			`rs, resp, err := h.configstoreClient.CreateRemoteSource(ctx, rs)`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`if err != nil {`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`return nil, errors.Errorf("failed to create remotesource: %w", ErrFromRemote(resp, err))`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`}`
gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`h.log.Infof("remotesource %s created, ID: %s", rs.Name, rs.ID)`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00
			`return rs, nil`
			`}`
gateway: move remaining remotesource logic from api to actions 2019-05-05 12:54:16 +00:00
*: implement remote source update 2019-05-23 08:29:03 +00:00			`type UpdateRemoteSourceRequest struct {`
			`RemoteSourceRef string`

			`Name *string`
			`APIURL *string`
			`SkipVerify *bool`
			`Oauth2ClientID *string`
			`Oauth2ClientSecret *string`
			`SSHHostKey *string`
			`SkipSSHHostKeyCheck *bool`
			`}`

			`func (h ActionHandler) UpdateRemoteSource(ctx context.Context, req UpdateRemoteSourceRequest) (*types.RemoteSource, error) {`
			`if !h.IsUserAdmin(ctx) {`
			`return nil, errors.Errorf("user not admin")`
			`}`

			`rs, resp, err := h.configstoreClient.GetRemoteSource(ctx, req.RemoteSourceRef)`
			`if err != nil {`
			`return nil, ErrFromRemote(resp, err)`
			`}`

			`if req.Name != nil {`
			`rs.Name = *req.Name`
			`}`
			`if req.APIURL != nil {`
			`rs.APIURL = *req.APIURL`
			`}`
			`if req.SkipVerify != nil {`
			`rs.SkipVerify = *req.SkipVerify`
			`}`
			`if req.Oauth2ClientID != nil {`
			`rs.Oauth2ClientID = *req.Oauth2ClientID`
			`}`
			`if req.Oauth2ClientSecret != nil {`
			`rs.Oauth2ClientSecret = *req.Oauth2ClientSecret`
			`}`
			`if req.SSHHostKey != nil {`
			`rs.SSHHostKey = *req.SSHHostKey`
			`}`
			`if req.SkipSSHHostKeyCheck != nil {`
			`rs.SkipSSHHostKeyCheck = *req.SkipSSHHostKeyCheck`
			`}`

			`h.log.Infof("updating remotesource")`
			`rs, resp, err = h.configstoreClient.UpdateRemoteSource(ctx, req.RemoteSourceRef, rs)`
			`if err != nil {`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`return nil, errors.Errorf("failed to update remotesource: %w", ErrFromRemote(resp, err))`
*: implement remote source update 2019-05-23 08:29:03 +00:00			`}`
			`h.log.Infof("remotesource %s updated", rs.Name)`

			`return rs, nil`
			`}`

gateway: move remaining remotesource logic from api to actions 2019-05-05 12:54:16 +00:00			`func (h *ActionHandler) DeleteRemoteSource(ctx context.Context, rsRef string) error {`
gateway: initial authorization 2019-05-03 21:19:23 +00:00			`if !h.IsUserAdmin(ctx) {`
			`return errors.Errorf("user not admin")`
			`}`

gateway: move remaining remotesource logic from api to actions 2019-05-05 12:54:16 +00:00			`resp, err := h.configstoreClient.DeleteRemoteSource(ctx, rsRef)`
			`if err != nil {`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`return errors.Errorf("failed to delete remote source: %w", ErrFromRemote(resp, err))`
gateway: move remaining remotesource logic from api to actions 2019-05-05 12:54:16 +00:00			`}`
			`return nil`
			`}`